Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Ix7airP4eg4mU3FOkXdTRpBehRU.roa
File: Ix7airP4eg4mU3FOkXdTRpBehRU.roa (raw, json)
Hash identifier: N7pg7+TSp/c5H9xxNYo7UyKqVqncuEQYpw8qu4Yshxo=
Subject key identifier: 23:1E:DA:8A:B3:F8:7A:0E:26:53:71:4E:91:77:53:46:90:5E:85:15
Certificate issuer: /CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Certificate serial: 28E240
Authority key identifier: 08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Ix7airP4eg4mU3FOkXdTRpBehRU.roa
Signing time: Wed 26 Jan 2022 09:48:44 +0000
ROA not before: Wed 26 Jan 2022 09:48:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.37.38.0/24 maxlen: 24
185.37.37.0/24 maxlen: 24
185.37.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2679360 (0x28e240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Validity
Not Before: Jan 26 09:48:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=231eda8ab3f87a0e2653714e91775346905e8515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:61:96:c6:24:69:61:7b:5a:4d:8d:64:06:
b7:c6:9d:63:bd:46:5e:e9:92:5d:2f:c8:24:80:33:
77:2f:9f:8c:a4:1d:cc:55:55:04:dd:77:87:85:74:
2c:f2:67:e3:90:cb:95:42:73:45:a4:cb:e1:79:f3:
a5:33:05:22:e2:47:cf:61:df:1e:89:c1:3f:3f:61:
9d:c8:7e:ef:48:52:16:ac:30:c0:9a:fa:6a:c8:02:
09:18:c4:4e:47:b0:f9:f9:6c:e8:f0:b1:73:97:c2:
b3:19:4c:6c:21:00:bd:33:f6:80:71:ab:f9:1b:52:
e2:3b:48:7a:73:04:08:83:02:7a:be:69:9c:69:af:
a1:a7:09:82:37:cb:fc:c9:1f:1a:f2:ad:bf:92:27:
b5:33:a5:9c:70:71:2f:9d:0a:0d:f1:4b:c2:c8:bc:
07:43:0b:d8:30:0b:4a:45:2b:53:8b:10:d4:fe:61:
ed:9d:9d:e6:61:77:36:24:ed:84:68:c7:ba:4f:b9:
65:c3:91:12:80:df:93:81:8a:68:9d:d4:e1:91:8d:
52:7f:fc:0e:33:93:e3:c7:46:e0:8d:22:b9:1a:ee:
64:57:94:c4:cb:0e:c6:bd:2d:45:60:c1:57:7b:32:
ae:f8:1b:36:6c:5a:02:4e:c2:f9:eb:3b:d9:b6:45:
31:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1E:DA:8A:B3:F8:7A:0E:26:53:71:4E:91:77:53:46:90:5E:85:15
X509v3 Authority Key Identifier:
keyid:08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/Ix7airP4eg4mU3FOkXdTRpBehRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/CEBZoMpgeKm3Xapm24Bv8iwOqtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.37.0-185.37.39.255
Signature Algorithm: sha256WithRSAEncryption
92:47:2e:b4:21:de:52:08:d3:d2:b6:d6:6a:3b:76:38:19:a5:
8a:d2:c0:bf:29:8d:d8:9d:76:a1:66:ae:1c:b1:be:47:b0:f2:
bf:9b:9e:1e:dc:22:a5:2c:8a:61:9a:46:1f:e8:cd:74:87:ab:
09:ca:52:be:4d:34:32:5d:17:2e:63:d1:81:3c:2b:cd:bb:52:
26:5a:31:6b:af:39:03:88:b5:51:96:45:04:2a:20:0d:0f:cf:
0d:34:26:c8:d5:c8:58:4c:5a:3c:ca:39:86:1e:b0:a0:5f:f3:
cc:60:f0:e0:86:3e:5e:c8:8c:bd:d4:47:cd:1c:42:ab:85:b2:
d5:fe:c7:7a:11:5e:0f:d2:b5:6d:94:b4:da:cf:88:ca:89:ee:
33:ef:f6:01:9c:3f:8f:8d:68:06:e1:0e:64:cf:4e:ad:62:14:
bd:ab:37:fb:13:91:b1:e1:e8:15:fd:18:8f:99:e1:6d:c8:6b:
bb:44:81:10:38:e6:d6:d6:9f:44:61:3f:c4:29:10:9c:6b:e2:
14:b8:35:6c:40:b4:e7:47:8f:6a:60:6d:5a:e6:b8:1e:7e:ee:
90:c9:60:a3:d6:92:f9:d6:37:f0:e3:dc:6e:ee:61:47:6b:21:
a5:61:18:94:6b:6d:26:af:d4:f9:45:f6:a0:67:07:17:9b:79:
66:86:f8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:45 2023 by rpki-client on console-ams.rpki-client.org